Make WordPress Core

Changeset 2557


Ignore:
Timestamp:
04/20/2005 04:06:37 AM (19 years ago)
Author:
matt
Message:

More sanitization cleanups

Location:
trunk/wp-admin
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-admin/edit.php

    r2481 r2557  
    8989  <fieldset>
    9090  <legend><?php _e('Search Posts&hellip;') ?></legend>
    91   <input type="text" name="s" value="<?php if (isset($s)) echo $s; ?>" size="17" />
     91  <input type="text" name="s" value="<?php if (isset($s)) echo wp_specialchars($s, 1); ?>" size="17" />
    9292  <input type="submit" name="submit" value="<?php _e('Search') ?>"  />
    9393  </fieldset>
  • trunk/wp-admin/post.php

    r2536 r2557  
    488488
    489489    $comment = $_GET['comment'];
    490     $p = $_GET['p'];
     490    $p = (int) $_GET['p'];
    491491    $commentdata = get_commentdata($comment, 1, true) or die(sprintf(__('Oops, no comment with this ID. <a href="%s">Go back</a>!'), 'edit.php'));
    492492
Note: See TracChangeset for help on using the changeset viewer.